On 4/3/23 22:54, Tony Wicks wrote:
I have been using the QSFP-100G-CWDM4 2k optics for within rack/DC for a
couple of years now. They are about the same price as SR optics but allow the
use of simple duplex single mode patches without blasting 10K optics at each
other over a 2M patch.
For folks that might be in the southwest US (and any that want to
visit!), we're going to hold an operators group meeting on May 4,
2023 in Albuquerque, New Mexico.
Come to the land of green chile chessburgers, and meet some of the
local operators. This inaugural meeting is free. We hope to
You said that they are seeing traffic from another upstream…are you
advertising the prefix to them? Are you advertising their prefix to your
upstream?
Looks like the route maps are involved in some dual redistribution…might
want to make sure everything is matching correctly, and being advertised
I don't see any route-maps applied to interfaces, so there must not be any PBR
going on. I only see ACLs, setting communities, setting local pref, etc. in the
route maps that are applied to neighbors.
-
Mike Hammett
Intelligent Computing Solutions
http://www.ics-il.com
Midwest-IX
I have been using the QSFP-100G-CWDM4 2k optics for within rack/DC for a
couple of years now. They are about the same price as SR optics but allow the
use of simple duplex single mode patches without blasting 10K optics at each
other over a 2M patch. Never had one fail or any compatibility
Hi,
Governmental services within DTAG (AS3320) ip space is pretty common in
Germany.
but FcrDNS matches. Scammers with access to the bka.de DNS?
Regards
Bjoern
Looks like scam to me, we are based in Germany and from time to time we
are getting requests from BKA, all mails were originated from
"*@bka.bund.de", never heard about ths "cyber.bka.de" Domain.
Also I would expect something more like a specific criminal
investigation from the BKA instead of
Only two VRFs, default and manangement. IIRC, everything I saw before mentioned
the default VRF.
I do see a ton of route-maps. It's mostly Greek to me, so I'll have to dig
through this a bit to see what's going on.
-
Mike Hammett
Intelligent Computing Solutions
Any security “authority” that sends a warning email that requires opening _any_
attachment doesn’t deserve to be taken seriously. This include the MPAA et al.
Also, if they don’t send it to your registered abuse email, into the trash it
should go without a glance.
-mel beckman
On Apr 3,
What about VRFs and/or policy based routing?
switch-core1# show vrf
VRF-Name VRF-ID State Reason
default 1 Up --
management 2 Up --
It could be an sFlow bug, but I come at this from a reported problem and
gathering data on that problem as opposed to looking at data for problems.
The snmp if index reported by the Nexus matches the if index in ElastiFlow.
-
Mike Hammett
Intelligent Computing Solutions
SFlow misconfiguration or bug on either the nexus or the sflow monitor? On the
monitor, can you verify that the snmp interfaces are mapped to the correct ones
on the nexus?
From: Mike Hammett
Sent: Monday, April 3, 2023 8:47 AM
To: Matthew Huff
Cc: NANOG
Subject: Re: Cisco Nexus 3k Route
What started this investigation was a client complained of traffic coming from
another upstream instead of our direct connection.
-
Mike Hammett
Intelligent Computing Solutions
http://www.ics-il.com
Midwest-IX
http://www.midwest-ix.com
- Original Message -
From: "Mike
It shows the desired result.
-
Mike Hammett
Intelligent Computing Solutions
http://www.ics-il.com
Midwest-IX
http://www.midwest-ix.com
- Original Message -
From: "Matthew Huff"
To: "Mike Hammett" , "NANOG"
Sent: Monday, April 3, 2023 5:38:23 AM
Subject: RE: Cisco
It shows the desired result.
-
Mike Hammett
Intelligent Computing Solutions
http://www.ics-il.com
Midwest-IX
http://www.midwest-ix.com
- Original Message -
From: "Jay Hennigan"
To: nanog@nanog.org
Sent: Monday, April 3, 2023 1:02:42 AM
Subject: Re: Cisco Nexus 3k
It appears legit.
BKA.DE is the German Bundeskriminalamt (Federal Police)
And the PTR records, SPF etc check out for the domain.
Might as well check the IP in question for malware if they’ve provided date /
timestamps and such
--srs
From: NANOG on behalf of Glen A.
Pearce
Date: Monday, 3
Hi All:
I received an E-mail with an attachment claiming something
on my network is infected and that I should look at the
attachment to find out what.
Normally I think everything with an attachment is phishing
to get me to run malware but:
#1: The sites linked to in it seem to be legit German
On 4/3/23 02:14, David Siegel wrote:
At this point, I'd be happy to see others happily deploy a
single-lambda optic of almost any variety! Since deploying 400G in a
clients network (but 100G still being the preferred connection
choice), any inquiry with respect to LR1, FR1 or DR+ is met
switch-core1# sh forwarding route x.x.x.x
slot 1
===
IPv4 routes for table default/base
--+-+--+-+-
Prefix| Next-hop| Interface
On 4/2/23 22:21, Mike Hammett wrote:
We have a Nexus 3064 that is setup with partial BGP tables and is
routing based on that.
I've done a show ip bgp for an IP of interest and it has an expected
next hop IP. I show ip arp on that next hop IP and it has the expected
interface.
However,
20 matches
Mail list logo
